Skip to:

  1. Skip to Jira Navigation
  2. Skip to Side Navigation
  3. Skip to Main Content

Add support for TLS 1.3

Description

Please add support for TLS 1.3. We have a potential customer with almost 1PB on the line, and they asked about this.

As of 11.2-U6 we are supporting only TLS 1.0, TLS 1.1 and TLS 1.2. (verified by nginx.conf)

This should probably be tied to as that is supposed to do some TLS work.

Notable is that NAS 101010 does not add TLS 1.3 support, which was ratified only a year ago.

Competition Assessment

None

relates to

SmartDraw Connector

Katalon Manual Tests (BETA)

Activity

William Gryzbowski 
September 21, 2020 at 6:24 PM

TLS v1.3 only works in my setup. If you're having issues and can reproduce please open a new Bug ticket with details.

A Chase Turner 
September 19, 2020 at 3:55 PM
(edited)

Is the following expected behavior for 12.0?

Configuring TrueNAS 12.0-RC1 /System/General/"HTTPS Protocols" to disable TLSv1.2 and allow TLSv1.3 only, upon reboot the HTTPS connection to WebUI reports:

  • "Connecting to TrueNAS ... Make sure the TrueNAS system is powered on and connected to the network". 

The above is reported for current releases of Firefox, Chrome, and Safari Technical Preview – all of which support TLSv1.3 

Reverting /System/General/"HTTPS Protocols" to re-enable TLSv1.2 results in nominal HTTPS console access.

NOTES:

https://clienttest.ssllabs.com:8443/ssltest/viewMyClient.html

William Gryzbowski 
October 4, 2019 at 4:52 PM

This will be fixed automatically on 12 upgrade but I will keep the ticket open so we make sure its properly supported/tested.

William Gryzbowski 
October 4, 2019 at 12:42 PM
(edited)

Note: not that simple. It needs OpenSSL 1.1+, FreeBSD 11 uses 1.0.

joshua 
October 3, 2019 at 7:04 PM

Note:  nginx support for tls 1.3 was added in 1.13, and 11.2-U6 is on 11.2.2 per "nginx -v".

Complete

Details

Assignee

Reporter

Labels

Components

Fix versions

Affects versions

Priority

Parent

More fields

Katalon Platform

Created October 3, 2019 at 7:00 PM
Updated July 1, 2022 at 4:44 PM
Resolved November 21, 2019 at 2:22 PM